Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2116

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-2116
Last Modified 06 Dec 2014 09:59:12
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2116

Summary

Directory traversal vulnerability in Tiny Server 1.1 allows remote attackers to read or download arbitrary files via a .. (dot dot) in the URL.

Vulnerable Systems

Application

  • Tinyserver 1.1


References

XF - tinyserver-dotdot-directory-traversal(14927)

BID - 9485

MISC - http://www.autistici.org/fdonato/advisory/tinyServer1.1[1.0.5]-adv.txt

BUGTRAQ - 20040124 Tiny Server 1.1 (1.0.5) Multiple Vulnerabilities

OSVDB - 3708

SECUNIA - 10707

XF - tinyserver-windows-dir-traversal(99048)

MISC - http://packetstormsecurity.com/files/129320/Tiny-Server-1.1.9-Arbitrary-File-Disclosure.html


Last Updated: 27 May 2016 11:07:10